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In the Claims 



Please cancel claim 16 without prejudice or dedication. 



Please amend the below claims as indicated. 




1 . (Currently Amended) A method of providing security against unauthorized access to internal 
resources of a network device comprising: 

receiving a digital signature at a security association manager (SAM)? wherein said digital 
signatur e includes on - cncryption cod e; 

said SAM requesting a de-^cryption code; 

said SAM deWcrypting said digital signature with said de-encryption code; 
said SAM authenticating said de-encrypted digital signature; asd 
said SAM, responsive to said authenticating of said de-encrvpted digital signature, 
obtaining an access levnel for program code associated with said digital signature; and 

said SA M, responsive to said obtained access level, requesting allowed operations* said 

allowed operationsusin^ said internal resources of said network device, said allowed operations 
associated with said acceks level, said requesting responsive to processing of said program code. 
authenticated signa twer 



2. (Original) A method of providing security according to Claim 1 wherein said network device 
comprises a Java enabled device. 



3. (Currently Amended) A method of providing security according to Claim 1 wherein said 
e ncryptien - codo comprioea a^privato key and said de-encryption code comprises a public key 
certificate associated with said privato - koy . 
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4. (Original) A metrod of providing security according to Claim 1 further comprising: 

a certificate authority receiving said request for a da-encryption code and comparing 
information in said request to information stored in said certificate authority. 

5. (Original) A method of providing security according to Claim 4 further comprising: 

said certificate '^authority responding to said request by sending said de-encryption code to 
said SAM. 




6. (Currently Amended) A method of providing security according to Claim 1 fe gfeef 
comprising: A method rif providing security ag a inst ^ ^ %rized access to internal resources of 
a network device comprising: 

receiving a digital signature at a security association manager (SAM); 

said SAM requesting a de-encryption code; 

said SAM de-encnvpting said digital signature with said de-encrvption code: 
said SAM authenticating said de-encrypted digital signature: 

said SAM requesting allowed operations associated with said authenticated signatilre; , 



a policy server rec< jiving said request for allowed operations associated with said 
authenticated signature; 

said policy server comparing said authenticated signature with information stored on said 
policy server, and 

said policy server s< aiding a response to said SAM indicating an access level 
corresponding to said authenticated signature. 

7. (Original) A method of p -oviding security according to Claim 6 further comprising: 



said policy server au 
authenticated signature prior 
stored on said policy server. 



henticating said request for allowed operations associated with said 
to comparing said authenticated signature with said information 



8. (Currently Amended) Apparatus 
resources of a network devic< 



for providing security against unauthorized access to internal 
comprising: 
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a security association manager (SAM)y configured to receive a digital signature including 
an encryption cod e; 

wherein said SA^M is configured to send a message including a portion of said digital 
signature; 

wherein said menage includes a request for an encryption decoder, 

wherein said SAIyl is further configured to receive a response to said messag e including 
said encryption decoden bnd 

wherein said SAM is configured to send a digitally signed message requesting an access 
level for program code associated with said digital signature, wherein said access level is 
associated with at least oAe allowed operation using said internal resources of said network 
device responsive to processing of said program code a llowod operations associated with sai d 
digital signature in rosporpo to receiving said r e play message . 

9. (Currently Amended) Apparatus for supplying security in accordance with Claim 8 further 
comprising: 

• a certificate authority configured to receive said message from said SAM, and to send 
said response reply.: wherein said certificate authority includes 



10. (Original) Apparatus for providing security according to Claim 8 wherein said network 
device comprises a Java enabled device. 



1 1 . (Currently Amended) Apparatus for providing security according to Claim 8 wherein said 
encryption codo comprises a privat e key and said encryption decoder comprises a public key 



certificate associat e d with said privato key , 

12. (Currently Amended)- A|paratus for providing s e curity according to Claim 8 further 
oomnrisin g r Apparatus for providing security against unauthorized access to internal resources of 



a network device comprising 



a security associatioi 



manager ( SAM) confi gured to receive a digital signature: 
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wherein said SAM is configured to send a message including a portion of said digital 



signature; 

wherein said meskage includes a request for an encryption decoder; 



wherein said SAM is further configured to receive a response to said message: and 



wherein said SAM is configured to send a digitally signed message requesti ng an access 



level for program code a isociated with said digital signature, in response to receiving said 



response message: 

a policy server cc nfiguied to receive said request for allowed operations associated with 
said authenticated signat ire; 

said policy server including a comparison device configured to compare said 
authenticated signature * ith information stored on said policy server; and 




said policy server 



being configured to send a response to said SAM indicating an access 



level corresponding to sai d authenticated signature. 

13. (Currently Amended) Apparatus for providing security against unauthorized access to 
..internal resources of a net vork device comprising: . 
means for receivin; j a digital signature including an encryption code; 
means for requestii l& and receiving a cce ss ing a de-encryption code in electrical 



communication with said r leans for receiving; 



means for de-er 



ting and authenticating said digital signature; 



means, responsive tb said de-encrvoting and authenticating of said digital signature, for 
obtaining an access level for a portion of program code associated with said digital signature: and 

means , responsive to said access level, for determining allowed operations associated 
with said portion of program code responsive to processing of said portion of program code, 
wherein said allowed operations access said internal resources of said network device d igtal 
signatur e. 



14. (Original) Apparatus for providing security according to Claim 13 wherein said network 
device comprises a Java enabled device. 
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15. (Currently Amended) kppararus for providing security according to Claim 13 wherein ?aid 
Portion of program codec uprises a further comprising downloadable fil e aosociatod with sai d 



digital signature . 



16. (Cancelled) Apparatus i 
code comprises a private 



for providing security according to Claim 13 wherein said encryption 
cey. 



17. (Original) Apparatus 
code comprises a public 



1 8, (Currently Amended) 
imn prisinp Apparatus for 



br providing security according to Claim 13 wherein said de-encryption 



I ey certificate. 



A pparatus fo rp rn -ri ttin r ; n rm ir ity nr™^"^ f " r*iiim n fa ther 



pmvi'riin p security against unauthorized access to internal resources of 



g. network device comprising; 



means for receivir f> a digital signatur e inrlnrfinp; m encryption code: 

means for acce sgii U a de-encrvption code in »i ~*ri™»l r^mimication with said means 



for receiving: and 
means for detenni 



in g allowed operations associated with said digital signature; and 



means for receiving a downloadable filing including said digital signal and assigning an 
access level to a java threap 
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